popup
Static | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Static Analysis

PE Compile Time

2021-03-20 04:36:49

PE Imphash

1ba58a7439f95ffe8a63e2db77ed6885

Sections

Name Virtual Address Virtual Size Size of Raw Data Entropy
.text 0x00001000 0x000082bf 0x00008400 5.82437901637
.rdata 0x0000a000 0x00003fa0 0x00004000 4.277249948
.data 0x0000e000 0x00003bfd 0x00003c00 4.00773698516

Imports

Library USER32.dll:
0x14000a060 MapDialogRect
0x14000a068 GetMenuDefaultItem
0x14000a070 CreateAcceleratorTableA
0x14000a078 PostThreadMessageA
0x14000a080 PeekMessageA
0x14000a088 DrawAnimatedRects
Library GDI32.dll:
0x14000a000 GetGlyphOutlineA
0x14000a008 GetTextAlign
0x14000a010 EnumFontFamiliesExW
0x14000a018 CreateHatchBrush
0x14000a020 CreatePolygonRgn
0x14000a028 ColorCorrectPalette
0x14000a030 GetGlyphIndicesW
Library SHLWAPI.dll:
0x14000a040 StrFormatByteSizeA
0x14000a048 StrRetToStrA
0x14000a050 StrDupA
!This program cannot be run in DOS mode.
`.rdata
@.data
ec0b7dec81ae697a1221099d2dcb0c574483f52edac087b748efe35d31c3ca4e2650b11172b9e33323ce1a57d8f91a60277012ce986a1b1734109462c0b1897d627d1454f191c70baa630c47659b3009d62c0c882aaacda20b60a7b39c853e2d1c3db658d1eb452710cc34017788354232467aeaf7ef1d6d4ea224d31eccd0511d86b35e7af11b13627eebab1f1fded440fe959856626df5091935acc8c1b0a630e3d692fe20e668f9f697134d057aa76bb81643808c7acb0aa73a888c93be9d8c8902a48d61b58aaf408b9e336397fd032a632b56017824996832cf1c2a045c2378147bac9bee77edcb6e58b5c2e2a65c02d4f336bd284fd6d1e2cf3c2771a1375460f6d65d218e78d6f46e9a44f5d31f2d48f554e3e563400ba4b8897892c4e6067b973cb87f2b72a690ec39c4047e1e91262fa963b2a82b118662e9633b7f3ca77c0f2947f2078060961db5bed1de0de90336a8fb20ec6fd08ed3a82716e3fc8f2d854325033c22a9d9d3f6ca5d7141f100ee839f1cc66f2fac16b49672c6044776daeb76e111eb9c08f3856bab1d130af4645f17415e9ab0cfd82c74ee8141f261b141e4f74ac970fde6d266b3e4f64adb2c889c117f96448e2603bd193f65e4f55f8b9579e896ee5f59ef38487996e46869bf3712cd8dafd385091e374ae731ed5f797ffc16cef8c6cbebbda721fb87027e2facdd192aed606cb9bd2d20
HcL$ L
D$ HcD$$
H9D$ s
D$(H9D$0
D$%xf;
D$<|f;
HcD$@H
HcD$0H
HcD$4H
HcD$Df;
HcD$4f;
D$DHcD$@f;
6Hc@<H
H9D$0u
D$HH9D$8
3D$Hf;
|$`?w.f;
D$ ;D$L
H+D$8:
+D$(f;
HcD$ H
HcD$$f;
HcT$(L
HcD$ HcL$
HcD$ HcL$(:
D$$HcD$$
D$(9D$
t,H;D$(
$H;D$8uH
$H;D$8u{
t&HcD$
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
.text$mn
.idata$5
.rdata
.rdata$zzzdbg
.idata$2
.idata$3
.idata$4
.idata$6
DrawAnimatedRects
PeekMessageA
PostThreadMessageA
CreateAcceleratorTableA
GetMenuDefaultItem
MapDialogRect
USER32.dll
CreateHatchBrush
EnumFontFamiliesExW
GetGlyphOutlineA
GetTextAlign
GetGlyphIndicesW
CreatePolygonRgn
ColorCorrectPalette
GDI32.dll
StrDupA
StrFormatByteSizeA
StrRetToStrA
SHLWAPI.dll
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
Antivirus Signature
Bkav Clean
Elastic Clean
MicroWorld-eScan Trojan.GenericKD.36541943
CMC Clean
CAT-QuickHeal Clean
McAfee Artemis!4E228802BCB6
Cylance Clean
VIPRE Clean
AegisLab Trojan.Win32.Cometer.4!c
Sangfor Clean
CrowdStrike win/malicious_confidence_90% (W)
BitDefender Trojan.GenericKD.36541943
K7GW Clean
K7AntiVirus Clean
Baidu Clean
Cyren Clean
Symantec Trojan.Gen.MBT
TotalDefense Clean
APEX Malicious
Avast Win64:Malware-gen
ClamAV Clean
Kaspersky Trojan.Win32.Cometer.fex
Alibaba Trojan:Win32/Cometer.0aae09e9
NANO-Antivirus Clean
ViRobot Trojan.Win32.Z.Agent.66560.AIB
Rising Trojan.Fuerboos!8.EFC8 (CLOUD)
Ad-Aware Trojan.GenericKD.36541943
Sophos Mal/Generic-S
Comodo Clean
F-Secure Clean
DrWeb Trojan.Siggen12.48116
Zillya Clean
TrendMicro Clean
McAfee-GW-Edition BehavesLike.Win64.VTFlooder.km
FireEye Trojan.GenericKD.36541943
Emsisoft Trojan.GenericKD.36541943 (B)
Ikarus Trojan.Swrort
GData Trojan.GenericKD.36541943
Jiangmin Clean
MaxSecure Clean
Avira TR/AD.Swrort.krmop
MAX malware (ai score=100)
Antiy-AVL Clean
Kingsoft Win32.Troj.Cometer.f.(kcloud)
Gridinsoft Clean
Arcabit Trojan.Generic.D22D95F7
SUPERAntiSpyware Clean
ZoneAlarm Trojan.Win32.Cometer.fex
Microsoft Trojan:Win32/Ymacco.AA6C
Cynet Malicious (score: 85)
AhnLab-V3 Clean
Acronis Clean
BitDefenderTheta Clean
ALYac Trojan.GenericKD.36541943
TACHYON Clean
VBA32 Clean
Malwarebytes Trojan.Cometer
Panda Trj/CI.A
Zoner Clean
ESET-NOD32 Clean
TrendMicro-HouseCall Clean
Tencent Clean
Yandex Clean
SentinelOne Clean
eGambit Clean
Fortinet W32/Cometer.FEX!tr
Webroot Clean
AVG Win64:Malware-gen
Paloalto Clean
Qihoo-360 Win32/Adware.Cometer.HgEASRIA
No IRMA results available.